Network devices must have the Finger service disabled.

From Infrastructure Router Security Technical Implementation Guide

Part of The finger service is not disabled.

SV-3079r3_rule Network devices must have the Finger service disabled.

Vulnerability discussion

The Finger service supports the UNIX Finger protocol, which is used for querying a host about the users that are logged on. This service is not necessary for generic users. If an attacker were to find out who is using the network, they may use social engineering practices to try to elicit classified DoD information.

Check content

Review the device configuration to determine if Finger has been implemented. If the Finger service is enabled, this is a finding.

Fix text

Configure the device to disable the Finger service.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer